Russell Coker (russell@coker.com.au) said:
I have USERCTL=yes in my /etc/sysconfig/network-scripts/ifcfg-wvlan0 and I run "ifup wvlan0" as a non-privileged user. Of course, this generates a long list of AVC messages. Should there be some special policy provisions for the usernetctl?
security_compute_sid: invalid context user_u:user_r:insmod_t for scontext=user_u:user_r:user_t tcontext=system_u:object_r:insmod_exec_t tclass=process
You just don't do such things as user_r, they should be done as sysadm_r.
This breaks installed systems, though. I suppose usernetctl needs to change roles.
Bill